$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: iakwh2BW9mrO3va1AUsjId44LfgR03t8FKPMZ21z0gE= Subject key identifier: 6F:E4:54:4E:C8:FA:C3:23:CD:B3:E0:5E:09:E2:97:05:3A:61:29:95 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0C9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C82 Signing time: Fri 18 Jul 2025 18:30:40 +0000 Manifest this update: Fri 18 Jul 2025 18:30:40 +0000 Manifest next update: Fri 25 Jul 2025 18:30:40 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: +nLi/7MZd49oAeBec6xaH+/74OiUfKGq/t/1jZinoR0=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Ns3EqlAuypXsdC/A5rNqIcQNoK/ntkU/96rQkctaiRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Jul 18 18:30:40 2025 GMT Not After : Jul 25 18:30:40 2025 GMT Subject: CN=687a92d0-c6b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e9:de:7a:9a:5d:0f:9b:e2:75:dc:0d:49:7d: 7f:29:4d:75:ae:2b:f1:c8:95:40:05:db:b7:aa:c9: b0:3e:14:97:0d:34:a4:51:fb:af:07:f3:39:35:15: 3d:7d:8e:87:12:e0:36:f1:c8:55:90:b1:bf:2a:b3: 60:b1:0f:92:70:06:e5:ca:5c:83:71:42:95:bc:0d: 93:e3:78:f5:8b:28:b1:2e:49:63:54:b5:32:bc:8d: c3:5f:fa:10:36:04:6c:95:77:8d:b5:61:c5:e2:77: af:82:d3:a6:3f:bc:b3:60:5f:27:2a:5b:a7:f5:24: 1d:c1:be:2f:25:8c:b0:52:4d:1d:1e:d1:2f:bc:53: ce:24:d5:f6:b9:1a:d7:29:c7:ce:79:65:b7:93:05: 18:46:6c:06:7a:7c:55:17:11:a9:34:69:12:48:1e: 27:21:f6:ce:e2:83:d3:71:6c:54:c9:ac:1d:f2:17: 08:b3:cd:7c:a0:a5:c7:90:9f:f4:62:4a:2e:f2:13: f2:68:b7:e4:a7:c0:3a:db:ef:fb:b7:10:d3:54:b1: 4b:31:5e:a1:dd:ff:c4:d5:af:11:36:7c:b0:fc:fc: db:c8:4c:10:7a:74:d3:d7:ec:6a:27:b0:07:f8:f4: ce:e8:97:d9:56:fd:b4:e1:20:f6:52:49:a8:97:65: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E4:54:4E:C8:FA:C3:23:CD:B3:E0:5E:09:E2:97:05:3A:61:29:95 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:d2:85:a7:05:e4:6e:48:09:95:4f:46:40:f6:9d:3d:b8:61: dd:fa:19:84:6d:5f:6a:9c:23:7d:6d:7d:71:f6:a8:49:e1:b7: e7:bf:4d:2c:5f:84:d4:3b:3c:a8:b4:97:4a:bb:92:ed:c6:88: 13:29:1b:5f:c2:18:c9:90:a0:b5:8e:36:2e:58:f7:97:a0:53: ce:a1:5a:f9:de:73:d7:a0:e5:3b:b1:48:9c:19:21:3c:6f:ec: 36:12:c4:13:c4:23:11:8d:85:bd:cc:90:b7:d1:54:ed:7e:6c: 81:10:1c:6c:92:7a:a5:53:51:f3:4d:d1:6a:6b:b8:9a:82:d1: 20:33:99:73:dd:fb:2b:11:49:4c:1d:ba:ea:54:c8:20:57:ab: 93:c9:41:13:6e:97:b2:3f:ae:ef:1f:99:e4:af:03:be:22:ad: 96:fd:36:d3:86:62:ad:89:e4:0f:6e:ed:c8:ec:bc:1a:f1:4a: ac:39:86:22:79:03:45:6a:db:eb:c9:26:2d:39:b5:ae:41:9f: 0d:a8:b1:cb:e5:01:fe:79:c8:a2:6d:19:13:0f:92:70:8b:1a: 14:b5:60:89:60:56:54:2b:e8:62:f2:f3:a5:26:ac:28:37:99: 70:e0:6f:44:e3:60:cd:f4:3a:fd:79:f5:e5:2d:82:76:15:8c: 50:6b:7a:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwNzE4MTgzMDQwWhcNMjUwNzI1MTgzMDQwWjAYMRYwFAYD VQQDEw02ODdhOTJkMC1jNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveneeppdD5viddwNSX1/KU11rivxyJVABdu3qsmwPhSXDTSkUfuvB/M5NRU9 fY6HEuA28chVkLG/KrNgsQ+ScAblylyDcUKVvA2T43j1iyixLkljVLUyvI3DX/oQ NgRslXeNtWHF4nevgtOmP7yzYF8nKlun9SQdwb4vJYywUk0dHtEvvFPOJNX2uRrX KcfOeWW3kwUYRmwGenxVFxGpNGkSSB4nIfbO4oPTcWxUyawd8hcIs818oKXHkJ/0 Ykou8hPyaLfkp8A62+/7txDTVLFLMV6h3f/E1a8RNnyw/PzbyEwQenTT1+xqJ7AH +PTO6JfZVv204SD2Ukmol2UUFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/kVE7I +sMjzbPgXgnilwU6YSmVMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI0oWnBeRuSAmVT0ZA9p09uGHd+hmEbV9qnCN9bX1x9qhJ4bfnv00s X4TUOzyotJdKu5LtxogTKRtfwhjJkKC1jjYuWPeXoFPOoVr53nPXoOU7sUicGSE8 b+w2EsQTxCMRjYW9zJC30VTtfmyBEBxsknqlU1HzTdFqa7iagtEgM5lz3fsrEUlM HbrqVMggV6uTyUETbpeyP67vH5nkrwO+Iq2W/TbThmKtieQPbu3I7Lwa8UqsOYYi eQNFatvrySYtObWuQZ8NqLHL5QH+eciibRkTD5JwixoUtWCJYFZUK+hi8vOlJqwo N5lw4G9E42DN9Dr9efXlLYJ2FYxQa3rB -----END CERTIFICATE-----Generated at Sun Jul 20 08:04:15 2025 by rpki-client